REMARKS 

A. Status of Claims 

Claims 1-3, 5-9, 1 1-12, 14, and 17 are pending in the application. Please cancel Claims 
4, 10, 15, and 18 without prejudice. 

1 . (Original) A method for managing access to a service comprising the steps of: 

(A) delegating, to a delegates by a delegator, over at least one ad hoc network 
in a personal area network, one or more permissions, wherein the one or more permissions 
comprise authority to access the service and to delegate one or more further permissions to one 
or more subsequent delegatees and wherein the one or more permissions are represented using a 
digital signature; 

(B) receiving from at least one of said permitted delegatees data representing 
credential information relating to said one or more permissions via a credential transmission 
mechanism over a second computer network that is different from the at least one personal area 
network; and 

(C) providing access to the service to at least one of said permitted delegatees 
over said second computer network. 

2. (Original) The method of claim 1 wherein said credential transmission mechanism 
comprises including said data in a header of an http request for a web page. 

3. (Original) The method of claim 1 wherein said credential transmission mechanism 
comprises including said data in a URL. 
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4. (Cancelled) 



5. (Original) The method of claim 1 wherein said personal area network comprises 
two or more devices that transmit data by infrared light waves. 

6. (Original) The method of claim 1 wherein said personal area network comprises 
two or more devices that transmit data by digital short-range radio waves. 

7. (Original) A system for managing access to a service comprising: 

a delegation device that delegates to a delegates from a delegator, over at least 
one ad hoc network in a personal area network, one or more permissions, wherein the one or 
more permissions comprise authority to delegate one or more further permissions to one or more 
subsequent delegatees and wherein the one or more permissions are represented using a digital 
signature; 

one or more first servers that receive from at least one of said permitted 
delegatees data representing credential information relating to said one or more permissions via a 
credential transmission mechanism over a second computer network that is different from the 
personal area network; and that provide access to the service to at least one of said permitted 
delegatees over said second computer network. 

8. (Original) The system of claim 7 wherein said credential transmission mechanism 
comprises including said data in a header of an http request for a web page. 
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9. (Original) The system of claim 7 wherein said credential transmission mechanism 
comprises including said data in a URL. 

10. (Cancelled) 

1 1 . (Original) The system of claim 7 wherein said personal area network comprises 
two or more devices that transmit data by infrared light waves. 

12. (Original) The system of claim 7 wherein said personal area network comprises 
two or more devices that transmit data by digital short-range radio waves. 

13. (Cancelled) 

14. (Previously amended) A method for managing access to a service comprising the 
steps of: 

(A) delegating, to a delegates by a delegator, one or more permissions, wherein the 
one or more permissions comprise authority to access the service and to delegate one or more 
further permissions to one or more subsequent delegatees and wherein the one or more 
permissions are represented using a digital signature; 

(B) receiving from at least one of said permitted delegatees data representing 
credential information relating to said one or more permissions, wherein said data is included in 
a URL, over a second computer network; and 
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(C) providing access to the service to at least one of said permitted delegatees over 
said second computer network. 

15. (Cancelled) 

16. (Cancelled) 

17. (Previously amended) A system for managing access to a service comprising: 
a delegation device that delegates to a delegatee from a delegator one or more 

permissions, wherein the one or more permissions comprise authority to delegate one or more 
further permissions to one or more subsequent delegatees and wherein the one or more 
permissions are represented using a digital signature based on a private key; 

one or more first servers that receive from at least one of said permitted 
delegatees data representing credential information relating to said one or more permissions in a 
URL over a second computer network; and that provide access to the service to at least one of 
said permitted delegatees over said second computer network. 

18. (Cancelled) 

B. Summary Of Office Action 

The Examiner has rejected claims 1-3, 5-9, 11,12, 14, and 17 under 35 U.S.C. 102(e) as 
being unpatentable over U.S. Pat. No. 6,144,997 to Lamming et al. ("Lamming"). The Examiner 
has rejected claims 4, 10, 15, and 18 under 35 U.S.C. 103(a) as being unpatentable over 
Lamming in view of U.S. Pat. No. 6,161,139 to Win ("Win"). 
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CONCLUSION 

In view of the foregoing, it is respectfully submitted that all pending claims are in 
condition for allowance. Applicant respectfully requests the withdrawal of the pending 
rejections and the timely allowance of the pending claims. If there are any fees due in 
connection with the filing of this response, please charge the fees to our Deposit Account No. 50- 
0310. The Examiner is invited to contact the undersigned at 202-739-5705 to discuss any matter 
concerning this application. 



Respectfully submitted, 

MORGAN, LEWIS & BOCKIUS LLP 



Alison B. Weisberg 
Registration Number 45,206 
Kent Basson 

Registration Number 48,125 



Dated: October 12. 2004 

MORGAN, LEWIS & BOCKIUS LLP 

1701 Market Street 
Philadelphia, PA 19103 
(215)963-5091 
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